.:[ packet storm ]:.
                             
security is a process, not a fix
security is a process, not a fix

 Section:  .. / 0801-advisories  /

Page 20 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 475 - 500 of 655
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: 01.09.08-1.txt
Description:
 iDefense Security Advisory 01.09.08 - Local exploitation of an input validation error vulnerability within Novell Inc.'s NetWare Client allows attackers to execute arbitrary code within the kernel. iDefense has confirmed the existence of this vulnerability in nicm.sys, file version 3.0.0.4, as included with Novell's NetWare Client 4.91 SP4. Other versions may also be vulnerable.
Author:Stephen Fewer
Homepage:http://www.idefense.com/
File Size:3547
Related CVE(s):CVE-2007-5762
Last Modified:Jan 10 03:33:24 2008
MD5 Checksum:c3b21473ead37ed6968f5bd86ad99e65

 ///  File Name: sa28153.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for clamav. This fixes some vulnerabilities, where one vulnerability has unknown impacts and others can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/28153/
File Size:3807
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:28602cb141f664fd2a060c8dd8fc9e9e

 ///  File Name: sa28219.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Joomla!, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
Homepage:http://secunia.com/advisories/28219/
File Size:3043
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:e102e5419972e98d241cb656ebd0c845

 ///  File Name: sa28247.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in SSH Tectia Client/Server, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/28247/
File Size:2301
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:550ccf257342f31a05316af3a55c9bec

 ///  File Name: sa28256.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Xcms, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/28256/
File Size:2777
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:3af5cb7b9676811b1ab478c0a43f031a

 ///  File Name: sa28337.txt
Description:
 Secunia Security Advisory - r3dm0v3 has reported some vulnerabilities in PortalApp, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks or bypass certain security restrictions.
Homepage:http://secunia.com/advisories/28337/
File Size:2961
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:32a2b63deab9d415419f73bb2d340da7

 ///  File Name: sa28340.txt
Description:
 Secunia Security Advisory - gemaglabin and Elekt have discovered a vulnerability in RunCms, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/28340/
File Size:2292
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:84450fab128977e1d19e6a8232eeea40

 ///  File Name: sa28363.txt
Description:
 Secunia Security Advisory - HP has issued an update for Thunderbird. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/28363/
File Size:2530
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:757812d8eeeef2d7b7ce70d9c8a290aa

 ///  File Name: sa28364.txt
Description:
 Secunia Security Advisory - Tomaz Bratusa has reported a vulnerability in Linksys WRT54GL, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Homepage:http://secunia.com/advisories/28364/
File Size:2508
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:e99e3c67768d9871e1ed2ca5418dc973

 ///  File Name: sa28371.txt
Description:
 Secunia Security Advisory - gemaglabin and Elekt have discovered a vulnerability in eggblog, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/28371/
File Size:2339
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:d11d7dd362357954e3b24e4d4ae9fe18

 ///  File Name: sa28377.txt
Description:
 Secunia Security Advisory - Debian has issued an update for libarchive. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Homepage:http://secunia.com/advisories/28377/
File Size:8161
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:9c02e9c3e086cb1135a2688ecafb3b72

 ///  File Name: sa28379.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been discovered in Gateway CWebLaunchCtl ActiveX control, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/28379/
File Size:2623
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:7ec5971b086b3cf2a964ca4db5957e9b

 ///  File Name: sa28380.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for opal. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
Homepage:http://secunia.com/advisories/28380/
File Size:11511
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:47c0c2adc3cef56a8fb608f8a0ab8041

 ///  File Name: sa28385.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for pwlib. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/28385/
File Size:26796
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:bd6ab820efc8bf8e8d2e6c7607efad1b

 ///  File Name: sa28386.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for cups. This fixes a vulnerability which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system, and a security issue which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Homepage:http://secunia.com/advisories/28386/
File Size:21644
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:dff00bf3b383f1f1f8dfa8519444096b

 ///  File Name: sa28387.txt
Description:
 Secunia Security Advisory - Avaya has acknowledged a vulnerability in various Avaya products, which potentially can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/28387/
File Size:2738
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:71e2ad4b5fe9fffee8dbd663369c0eed

 ///  File Name: sa28388.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for unp. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/28388/
File Size:1998
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:322b931f16d0a82038d938bacdf9ca56

 ///  File Name: sa28398.txt
Description:
 Secunia Security Advisory - HP has issued an update for Firefox. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, conduct phishing and cross-site scripting attacks, manipulate certain data, and potentially compromise a user's system.
Homepage:http://secunia.com/advisories/28398/
File Size:2618
Last Modified:Jan 10 03:17:01 2008
MD5 Checksum:4a82655cd0a207a6f7d684fd9f2b9029

 ///  File Name: sapone.txt
Description:
 SAP MaxDB versions 7.6.03 build 007 and below suffer from a pre-authentication remote code execution vulnerability.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:sapone.zip
File Size:2175
Last Modified:Jan 9 13:20:30 2008
MD5 Checksum:6a8a2527c090cc588f6704978b76c990

 ///  File Name: omegasoft-cookie.txt
Description:
 It seems that Omegasoft's Insel 7 may suffer from a cookie validation vulnerability.
Author:MC Iglo
File Size:778
Last Modified:Jan 9 13:17:44 2008
MD5 Checksum:cbe6899e3759e32d1ad25cad24185bd4

 ///  File Name: USN-564-1.txt
Description:
 Ubuntu Security Notice 564-1 - Bill Trost discovered that snmpd did not properly limit GETBULK requests. A remote attacker could specify a large number of max-repetitions and cause a denial of service via resource exhaustion.
Homepage:http://security.ubuntu.com/
File Size:17609
Related CVE(s):CVE-2007-5846
Last Modified:Jan 9 13:14:06 2008
MD5 Checksum:fbe598aceb94d35be2cb8a92e0fa08fd

 ///  File Name: INFIGO-2008-01-06.txt
Description:
 INFIGO IS Security Advisory #ADV-2008-01-06 - The McAfee E-Business Server versions 8.5.2 and below suffer from a pre-authentication code execution and denial of service vulnerability.
Author:Leon Juranic
Homepage:http://www.infigo.hr/
Related Exploit:mcafee2.pl.txt
File Size:2481
Last Modified:Jan 9 13:11:21 2008
MD5 Checksum:75667f5632db67420d78bca6139c7ed5

 ///  File Name: MDVSA-2008-004.txt
Description:
 Mandriva Linux Security Advisory - Index Functions Privilege Escalation: as a unique feature, PostgreSQL allows users to create indexes on the results of user-defined functions, known as expression indexes. This provided two vulnerabilities to privilege escalation: (1) index functions were executed as the superuser and not the table owner during VACUUM and ANALYZE, and (2) that SET ROLE and SET SESSION AUTHORIZATION were permitted within index functions. Regular Expression Denial-of-Service: three separate issues in the regular expression libraries used by PostgreSQL allowed malicious users to initiate a denial-of-service by passing certain regular expressions in SQL queries. First, users could create infinite loops using some specific regular expressions. Second, certain complex regular expressions could consume excessive amounts of memory. Third, out-of-range backref numbers could be used to crash the backend. DBLink Privilege Escalation: DBLink functions combined with local trust or ident authentication could be used by a malicious user to gain superuser privileges. This issue has been fixed, and does not affect users who have not installed DBLink (an optional module), or who are using password authentication for local access. This same problem was addressed in the previous release cycle , but that patch failed to close all forms of the loophole.
Homepage:http://www.mandriva.com/security/
File Size:3707
Related CVE(s):CVE-2007-6600, CVE-2007-4772, CVE-2007-6067, CVE-2007-4769, CVE-2007-6601
Last Modified:Jan 9 13:06:37 2008
MD5 Checksum:d93a0cdd381a117359d24819bc39bf3b

 ///  File Name: MDVSA-2008-003.txt
Description:
 Mandriva Linux Security Advisory - An integer overflow vulnerability was reported by iDefense with clamav when parsing Portable Executable (PE) files packed in he MEW format. This could be exploited to cause a heap-based buffer overflow. Toeroek Edwin reported an off-by-one error when decompressing MS-ZIP compressed CAB files. As well, an unspecified vulnerability related to the bzip2 decompression algorithm was also discovered.
Homepage:http://www.mandriva.com/security/
File Size:12689
Related CVE(s):CVE-2007-6336, CVE-2007-6335, CVE-2007-6337
Last Modified:Jan 9 13:03:36 2008
MD5 Checksum:1330f076ef6be171676b36fe6eeda847

 ///  File Name: sa28375.txt
Description:
 Secunia Security Advisory - IBM has acknowledged a vulnerability in IBM Websphere Application Server for z/OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/28375/
File Size:2065
Last Modified:Jan 9 13:01:03 2008
MD5 Checksum:4b6d9d252cf35ab5d6bcd53015da932a
 

 ///  Last 10 Files
  1. :· dsa-1677-1.txt
  2. :· z1exchange-sqlxss.txt
  3. :· cmsmaxsite-exec.txt
  4. :· ocean12ml-sqlxssdisclose.txt
  5. :· orkut-sqlxss.txt
  6. :· rapid-disclose.txt
  7. :· jbook-disclosesql.txt
  8. :· PLSA-2008-77.txt
  9. :· sunbyte-sql.txt
  10. :· cpanel-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1677-1.txt
  2. :· PLSA-2008-77.txt
  3. :· glsa-200812-07.txt
  4. :· glsa-200812-06.txt
  5. :· glsa-200812-05.txt
  6. :· glsa-200812-04.txt
  7. :· glsa-200812-03.txt
  8. :· glsa-200812-02.txt
  9. :· glsa-200812-01.txt
  10. :· USN-683-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· z1exchange-sqlxss.txt
  2. :· cmsmaxsite-exec.txt
  3. :· ocean12ml-sqlxssdisclose.txt
  4. :· orkut-sqlxss.txt
  5. :· rapid-disclose.txt
  6. :· jbook-disclosesql.txt
  7. :· sunbyte-sql.txt
  8. :· cpanel-bypass.txt
  9. :· pacpoll-disclose.txt
  10. :· BMSA-2008-09.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· vncrush.txt
  2. :· rshatter.txt
  3. :· Exomind-v0.2.tar.gz
  4. :· clamav-0.94.2.tar.gz
  5. :· cadfile.zip
  6. :· anehta-v0.6.0fixed2.zip
  7. :· tagfuzz.txt
  8. :· BrowserRider.20081124.tar.bz2
  9. :· mp3nema-v0_2.tar.gz
  10. :· squid-nufw-helper-1.1.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sqlinj-insouts.txt
  2. :· format-string-linux.txt
  3. :· frame-pointer-overwrite-linux.txt
  4. :· iptablesf.txt
  5. :· nufw-2.2.19.tar.gz
  6. :· frhack2009-cfp.txt
  7. :· oracle-forensics-scns.pdf
  8. :· cansecwest-2009.txt
  9. :· A5.1.zip
  10. :· a51-php.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice